Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-th6m-yd2z-ykba

Summary

Kedro is a toolbox for production-ready data science. Prior to 1.3.0, the _get_versioned_path() method in kedro/io/core.py constructs filesystem paths by directly interpolating user-supplied version strings without sanitization. Because version strings are used as path components, traversal sequences such as ../ are preserved and can escape the intended versioned dataset directory.
This is reachable through multiple entry points: catalog.load(..., version=...), DataCatalog.from_config(..., load_versions=...), and the CLI via kedro run --load-versions=dataset:../../../secrets. An attacker who can influence the version string can force Kedro to load files from outside the intended version directory, enabling unauthorized file reads, data poisoning, or cross-tenant data access in shared environments. This vulnerability is fixed in 1.3.0.

Aliases

alias	CVE-2026-35167

alias	GHSA-6326-w46w-ppjw

alias	PYSEC-2026-71

Fixed_packages

url	pkg:pypi/kedro@1.3.0
purl	pkg:pypi/kedro@1.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.3.0

Affected_packages

url pkg:pypi/kedro@0.14.0

purl pkg:pypi/kedro@0.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.14.0

url pkg:pypi/kedro@0.14.1

purl pkg:pypi/kedro@0.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.14.1

url pkg:pypi/kedro@0.14.2

purl pkg:pypi/kedro@0.14.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.14.2

url pkg:pypi/kedro@0.14.3

purl pkg:pypi/kedro@0.14.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.14.3

url pkg:pypi/kedro@0.15.0

purl pkg:pypi/kedro@0.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.0

url pkg:pypi/kedro@0.15.1

purl pkg:pypi/kedro@0.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.1

url pkg:pypi/kedro@0.15.2

purl pkg:pypi/kedro@0.15.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.2

url pkg:pypi/kedro@0.15.3

purl pkg:pypi/kedro@0.15.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.3

url pkg:pypi/kedro@0.15.4

purl pkg:pypi/kedro@0.15.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.4

url pkg:pypi/kedro@0.15.5

purl pkg:pypi/kedro@0.15.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.5

url pkg:pypi/kedro@0.15.6

purl pkg:pypi/kedro@0.15.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.6

url pkg:pypi/kedro@0.15.7

purl pkg:pypi/kedro@0.15.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.7

url pkg:pypi/kedro@0.15.8

purl pkg:pypi/kedro@0.15.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.8

url pkg:pypi/kedro@0.15.9

purl pkg:pypi/kedro@0.15.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.15.9

url pkg:pypi/kedro@0.16.0

purl pkg:pypi/kedro@0.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.0

url pkg:pypi/kedro@0.16.1

purl pkg:pypi/kedro@0.16.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.1

url pkg:pypi/kedro@0.16.2

purl pkg:pypi/kedro@0.16.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.2

url pkg:pypi/kedro@0.16.3

purl pkg:pypi/kedro@0.16.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.3

url pkg:pypi/kedro@0.16.4

purl pkg:pypi/kedro@0.16.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.4

url pkg:pypi/kedro@0.16.5

purl pkg:pypi/kedro@0.16.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.5

url pkg:pypi/kedro@0.16.6

purl pkg:pypi/kedro@0.16.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.16.6

url pkg:pypi/kedro@0.17.0

purl pkg:pypi/kedro@0.17.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.0

url pkg:pypi/kedro@0.17.1

purl pkg:pypi/kedro@0.17.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.1

url pkg:pypi/kedro@0.17.2

purl pkg:pypi/kedro@0.17.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.2

url pkg:pypi/kedro@0.17.3

purl pkg:pypi/kedro@0.17.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.3

url pkg:pypi/kedro@0.17.4

purl pkg:pypi/kedro@0.17.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.4

url pkg:pypi/kedro@0.17.5

purl pkg:pypi/kedro@0.17.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.5

url pkg:pypi/kedro@0.17.6

purl pkg:pypi/kedro@0.17.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.6

url pkg:pypi/kedro@0.17.7

purl pkg:pypi/kedro@0.17.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.17.7

url pkg:pypi/kedro@0.18.0

purl pkg:pypi/kedro@0.18.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.0

url pkg:pypi/kedro@0.18.1

purl pkg:pypi/kedro@0.18.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.1

url pkg:pypi/kedro@0.18.2

purl pkg:pypi/kedro@0.18.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.2

url pkg:pypi/kedro@0.18.3

purl pkg:pypi/kedro@0.18.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.3

url pkg:pypi/kedro@0.18.4

purl pkg:pypi/kedro@0.18.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.4

url pkg:pypi/kedro@0.18.5

purl pkg:pypi/kedro@0.18.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.5

url pkg:pypi/kedro@0.18.6

purl pkg:pypi/kedro@0.18.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.6

url pkg:pypi/kedro@0.18.7

purl pkg:pypi/kedro@0.18.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.7

url pkg:pypi/kedro@0.18.8

purl pkg:pypi/kedro@0.18.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.8

url pkg:pypi/kedro@0.18.9

purl pkg:pypi/kedro@0.18.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.9

url pkg:pypi/kedro@0.18.10

purl pkg:pypi/kedro@0.18.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.10

url pkg:pypi/kedro@0.18.11

purl pkg:pypi/kedro@0.18.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.11

url pkg:pypi/kedro@0.18.12

purl pkg:pypi/kedro@0.18.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.12

url pkg:pypi/kedro@0.18.13

purl pkg:pypi/kedro@0.18.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.13

url pkg:pypi/kedro@0.18.14

purl pkg:pypi/kedro@0.18.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.18.14

url pkg:pypi/kedro@0.19.0

purl pkg:pypi/kedro@0.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.0

url pkg:pypi/kedro@0.19.1

purl pkg:pypi/kedro@0.19.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.1

url pkg:pypi/kedro@0.19.2

purl pkg:pypi/kedro@0.19.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.2

url pkg:pypi/kedro@0.19.3

purl pkg:pypi/kedro@0.19.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.3

url pkg:pypi/kedro@0.19.4

purl pkg:pypi/kedro@0.19.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.4

url pkg:pypi/kedro@0.19.5

purl pkg:pypi/kedro@0.19.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.5

url pkg:pypi/kedro@0.19.6

purl pkg:pypi/kedro@0.19.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.6

url pkg:pypi/kedro@0.19.7

purl pkg:pypi/kedro@0.19.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.7

url pkg:pypi/kedro@0.19.8

purl pkg:pypi/kedro@0.19.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.8

url pkg:pypi/kedro@0.19.9

purl pkg:pypi/kedro@0.19.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.9

url pkg:pypi/kedro@0.19.10

purl pkg:pypi/kedro@0.19.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.10

url pkg:pypi/kedro@0.19.11

purl pkg:pypi/kedro@0.19.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.11

url pkg:pypi/kedro@0.19.12

purl pkg:pypi/kedro@0.19.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.12

url pkg:pypi/kedro@0.19.13

purl pkg:pypi/kedro@0.19.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.13

url pkg:pypi/kedro@0.19.14

purl pkg:pypi/kedro@0.19.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.14

url pkg:pypi/kedro@0.19.15

purl pkg:pypi/kedro@0.19.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@0.19.15

url pkg:pypi/kedro@1.0.0rc1

purl pkg:pypi/kedro@1.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.0.0rc1

url pkg:pypi/kedro@1.0.0rc2

purl pkg:pypi/kedro@1.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.0.0rc2

url pkg:pypi/kedro@1.0.0rc3

purl pkg:pypi/kedro@1.0.0rc3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.0.0rc3

url pkg:pypi/kedro@1.0.0

purl pkg:pypi/kedro@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.0.0

url pkg:pypi/kedro@1.1.0

purl pkg:pypi/kedro@1.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.1.0

url pkg:pypi/kedro@1.1.1

purl pkg:pypi/kedro@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.1.1

url pkg:pypi/kedro@1.2.0

purl pkg:pypi/kedro@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6x1m-q9dg-9ycx

vulnerability	VCID-th6m-yd2z-ykba

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/kedro@1.2.0

References

reference_url

https://github.com/kedro-org/kedro/pull/5442

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://github.com/kedro-org/kedro/pull/5442

reference_url

https://github.com/kedro-org/kedro/security/advisories/GHSA-6326-w46w-ppjw

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://github.com/kedro-org/kedro/security/advisories/GHSA-6326-w46w-ppjw

Weaknesses

Exploits

Severity_range_score 8.1 - 8.1

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-th6m-yd2z-ykba

Vulnerability Instance